On 8 April 2014 09:32, t.p. <daedulus@xxxxxxxxxxxxx> wrote:
The path that I have seen several Security ADs steer Working Groups down
is to start with a threat analysis before deciding what counter measures
are appropriate.
Several contributors have been saying exactly that for almost a week.
These suggestions have been answered by dismissive emails and a relentless bombardment of magic pixie dust.